Zero Day Initiative Advisory 06-020
Apple iTunes suffers from an integer overflow vulnerability when performing AAC file parsing.
View ArticleFreeHostSQL.txt
FreeHost software is susceptible to SQL injection attacks in misc.php and news.php.
View ArticleMyNewsGroupsSQL.txt
MyNewsGroups version 0.6 is susceptible to SQL injection attacks in tree.php.
View Articlehobbit42.txt
All versions under the 4.2 release of Hobbit prior to 2006-Jun-30 suffer from a flaw where the logfetch utility can be used to read any file on the filesystem.
View Articlebulletins.txt
This is an article discussing some dangers of Myspace bulletins. It includes proof of concept code that can be used to download hundreds of thousands of bulletins that most users assume to be only...
View ArticleSSRT5996.txt
HP Security Bulletin - A potential security vulnerability has been identified with HP-UX mkdir(1). The vulnerability could be exploited by a local user to gain unauthorized access.
View ArticleExploit Labs Security Advisory 2006.4
EXPL-A-2006-004 exploitlabs.com Advisory 049 - phpFormGenerator forces insecure usage of permissions for the application to work.
View Articlebuddyzone101.txt
Buddy Zone version 1.0.1 suffers from a multitude of cross site scripting flaws.
View Articlephpmyadmin281.txt
phpMyAdmin version 2.8.1 is susceptible to a cross site scripting vulnerability.
View Articlerandshop.txt
Randshop versions 1.1.1 and below are susceptible to a remote file inclusion vulnerability.
View ArticleEcho Security Advisory 2006.35
Opera 9 denial of service exploit that makes use of an iframe tag combined with javascript.
View Articlenuhe-0.01.tar.gz
Nuhe is a rule based log monitoring system which is capable of taking action when rules are matched against log activity. By default, Nuhe runs in the background (as a daemon), but it can also be used...
View Article